BSPlayer Stack Overflow Vulnerability BLS Network Vulnerability

Summary

This host is running BSPlayer Free Edition and is prone to Stack Overflow Vulnerability.

Impact

Successful exploitation will let the attacker craft a malicious arbitrary 'bls' file and cause stack overflow in the context of the affected application or can also cause remote code execution. Impact level: Application

Solution

Upgrade to the latest version 2.36.990 http://www.bsplayer.org/en/bs.player/download

Insight

This flaw is due to boundary check error while the user supplies input data in the context of the application.

Affected

BSPlayer Version prior to 2.36.990 on Windows.

References

http://secunia.com/advisories/34412

Updated on 2017-03-28

Severity

Classification

CVE CVE-2009-1068

CVSS	Base Score: 9.3 AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Reader '/Registry' and '/Ordering' Buffer Overflow Vulnerability (Win)
BaoFeng Storm '.smpl' File Buffer Overflow Vulnerability
BSPlayer Stack Overflow Vulnerability BLS
Adobe Reader Multimeda Doc.media.newPlayer Code Execution Vulnerability (Linux)
Adobe Reader 'Plug-in' Buffer Overflow Vulnerability (Mac OS X)

Take action and discover your vulnerabilities